Issues and Future Work
It's unclear how that's going to work, just like it's unclear about how channels will work.
Several people, including one of my anonymous reviewers rightly suggested that ViSP might be even easier if it could be deployed not as separate XML but instead as a “security stylesheet” in CSS. So we're working on that. We're also putting together a user study for the fall so we can answer the question of whether it really is more usable. And of course, there are more tests to be had against other websites and real world attacks.
Note: This is part of my presentation on Visual Security Policy for the Web.